security engineering – Experimental News Clipping Site

Cloud Blog: Cloud CISO Perspectives: Going beyond 2FA to address fast-rising, emerging threats

Jul 30, 2025

—

by

Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-adding-new-layered-protections-to-2fa/ Source: Cloud Blog Title: Cloud CISO Perspectives: Going beyond 2FA to address fast-rising, emerging threats Feedly Summary: Welcome to the second Cloud CISO Perspectives for July 2025. Today, Andy Wen, director, product management, Workspace Security, discusses new efforts we’re making to defend against identity-based cyberattacks.As with all Cloud CISO Perspectives, the contents…

Cloud Blog: Cloud CISO Perspectives: Our Big Sleep agent makes a big leap, and other AI news

Jul 17, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-our-big-sleep-agent-makes-big-leap/ Source: Cloud Blog Title: Cloud CISO Perspectives: Our Big Sleep agent makes a big leap, and other AI news Feedly Summary: Welcome to the first Cloud CISO Perspectives for July 2025. Today, Sandra Joyce, vice president, Google Threat Intelligence, talks about an incredible milestone with our Big Sleep AI agent, as well…

Cloud Blog: Cloud CISO Perspectives: How Google Cloud’s security team helps build securely

May 21, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/identity-security/cloud-ciso-perspectives-how-google-cloud-security-team-helps-build-securely/ Source: Cloud Blog Title: Cloud CISO Perspectives: How Google Cloud’s security team helps build securely Feedly Summary: Welcome to the first Cloud CISO Perspectives for May 2025. Today, Iain Mulholland, senior director, Security Engineering, pulls back the curtain on how Google Cloud approaches security engineering and how we take secure by design…

Schneier on Security: Applying Security Engineering to Prompt Injection Security

Apr 29, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.schneier.com/blog/archives/2025/04/applying-security-engineering-to-prompt-injection-security.html Source: Schneier on Security Title: Applying Security Engineering to Prompt Injection Security Feedly Summary: This seems like an important advance in LLM security against prompt injection: Google DeepMind has unveiled CaMeL (CApabilities for MachinE Learning), a new approach to stopping prompt-injection attacks that abandons the failed strategy of having AI models police…

Microsoft Security Blog: Securing our future: April 2025 progress report on Microsoft’s Secure Future Initiative

Apr 21, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.microsoft.com/en-us/security/blog/2025/04/21/securing-our-future-april-2025-progress-report-on-microsofts-secure-future-initiative/ Source: Microsoft Security Blog Title: Securing our future: April 2025 progress report on Microsoft’s Secure Future Initiative Feedly Summary: The Microsoft Secure Future Initiative (SFI) stands as the largest cybersecurity engineering project in history and most extensive effort of its kind at Microsoft. Now, we are sharing the second SFI progress report,…

Simon Willison’s Weblog: CaMeL offers a promising new direction for mitigating prompt injection attacks

Apr 11, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://simonwillison.net/2025/Apr/11/camel/#atom-everything Source: Simon Willison’s Weblog Title: CaMeL offers a promising new direction for mitigating prompt injection attacks Feedly Summary: In the two and a half years that we’ve been talking about prompt injection attacks I’ve seen alarmingly little progress towards a robust solution. The new paper Defeating Prompt Injections by Design from Google…

Cloud Blog: What’s new with Google Cloud networking

Apr 9, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/networking/networking-innovations-at-google-cloud-next25/ Source: Cloud Blog Title: What’s new with Google Cloud networking Feedly Summary: The AI era is here, fundamentally reshaping industries and demanding unprecedented network capabilities for training, inference and serving AI models. To power this transformation, organizations need global networking solutions that can handle massive capacity, seamless connectivity, and provide robust security. …

Hacker News: Hard problems that reduce to document ranking

Feb 25, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://noperator.dev/posts/document-ranking-for-complex-problems/ Source: Hacker News Title: Hard problems that reduce to document ranking Feedly Summary: Comments AI Summary and Description: Yes Summary: The text discusses the innovative application of large language models (LLMs) in document ranking, particularly for locating vulnerabilities in code patches. It presents a novel approach to addressing complex security problems by…

Cloud Blog: 5 ways Google Cloud can help you minimize credential theft risk

Feb 10, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/identity-security/5-ways-google-cloud-can-help-you-minimize-credential-theft-risk/ Source: Cloud Blog Title: 5 ways Google Cloud can help you minimize credential theft risk Feedly Summary: Threat actors who target cloud environments are increasingly focusing on exploiting compromised cloud identities. A compromise of human or non-human identities can lead to increased risks, including cloud resource abuse and sensitive data exfiltration. These…

Irrational Exuberance: How should we control access to user data?

Feb 7, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://lethain.com/user-data-access-strategy/ Source: Irrational Exuberance Title: How should we control access to user data? Feedly Summary: At some point in a startup’s lifecycle, they decide that they need to be ready to go public in 18 months, and a flurry of IPO-readiness activity kicks off. This strategy focuses on a company working on IPO…

Tag: security engineering